LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.7	CVE-2025-53113	GLPI technicians can access unauthorized information through external links_CVE-2025-53113 GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk...	glpi-project	glpi >= 0.65, < 10.0.19	Jul 30, 2025	CVE
LOW 2.5	CVE-2025-36609	CVE-2025-36609_CVE-2025-36609 Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vulnerability. A low privileged attacker with loc...	Dell	SmartFabric OS10 Software N/A	Jul 30, 2025	CVE
LOW 3.5	CVE-2025-37109	HPE Telco Service Activator, Protection Mechanism Failure_CVE-2025-37109 Cross-site scripting vulnerability has been identified in HPE Telco Service Activator product	Hewlett Packard Enterprise (HPE)	HPE Telco Service Activator 10.3.0	Jul 31, 2025	CVE
LOW 2	CVE-2025-53011	MaterialX is Vulnerable to NULL Pointer Dereference due to Unchecked implGraphOutput_CVE-2025-53011 MaterialX is an open standard for the exchange of rich material and look-development content across applications and renderers. In version 1.39.2, ...	AcademySoftwareFoundation	MaterialX >= 1.39.2, < 1.39.3	Aug 1, 2025	CVE
LOW 2	CVE-2025-53010	MaterialX’s unchecked nodeGraph->getOutput return is vulnerable to NULL Pointer Dereference_CVE-2025-53010 MaterialX is an open standard for the exchange of rich material and look-development content across applications and renderers. In version 1.39.2, ...	AcademySoftwareFoundation	MaterialX >= 1.39.2, < 1.39.3	Aug 1, 2025	CVE
LOW 3.7	CVE-2025-6011	Timing Side-Channel in Vault’s Userpass Auth Method_CVE-2025-6011 A timing side channel in Vault and Vault Enterprise’s (“Vault”) userpass auth method allowed an attacker to distinguish between existing and non-ex...	HashiCorp	Vault	Aug 1, 2025	CVE
LOW 2.8	CVE-2025-54781	Himmelblau leaks an Intune service access token in its logs_CVE-2025-54781 Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. When debugging is enabled for Himmelblau in version 1.0.0, the him...	himmelblau-idm	himmelblau >= 1.0.0, < 1.1.0	Aug 1, 2025	CVE
LOW 3.3	CVE-2025-23288	CVE-2025-23288_CVE-2025-23288 NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker may cause an exposure of sensitive system information with local ...	NVIDIA	GPU Display Drivers R535, R570, R575	Aug 2, 2025	CVE
LOW 3.3	CVE-2025-23287	CVE-2025-23287_CVE-2025-23287 NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker may access sensitive system-level information. A successful exploi...	NVIDIA	GPU Display Drivers R535, R570, R575	Aug 2, 2025	CVE
LOW 2.5	CVE-2025-23290	CVE-2025-23290_CVE-2025-23290 NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a guest could get global GPU metrics which may be influenced by wor...	NVIDIA	GPU Display Drivers R535, R570	Aug 2, 2025	CVE